| #include <linux/kdebug.h> |
| #include <linux/kprobes.h> |
| #include <linux/module.h> |
| #include <linux/notifier.h> |
| #include <linux/rcupdate.h> |
| #include <linux/vmalloc.h> |
| #include <linux/reboot.h> |
| |
| /* |
| * Notifier list for kernel code which wants to be called |
| * at shutdown. This is used to stop any idling DMA operations |
| * and the like. |
| */ |
| BLOCKING_NOTIFIER_HEAD(reboot_notifier_list); |
| |
| /* |
| * Notifier chain core routines. The exported routines below |
| * are layered on top of these, with appropriate locking added. |
| */ |
| |
| static int notifier_chain_register(struct notifier_block **nl, |
| struct notifier_block *n) |
| { |
| while ((*nl) != NULL) { |
| if (n->priority > (*nl)->priority) |
| break; |
| nl = &((*nl)->next); |
| } |
| n->next = *nl; |
| rcu_assign_pointer(*nl, n); |
| return 0; |
| } |
| |
| static int notifier_chain_cond_register(struct notifier_block **nl, |
| struct notifier_block *n) |
| { |
| while ((*nl) != NULL) { |
| if ((*nl) == n) |
| return 0; |
| if (n->priority > (*nl)->priority) |
| break; |
| nl = &((*nl)->next); |
| } |
| n->next = *nl; |
| rcu_assign_pointer(*nl, n); |
| return 0; |
| } |
| |
| static int notifier_chain_unregister(struct notifier_block **nl, |
| struct notifier_block *n) |
| { |
| while ((*nl) != NULL) { |
| if ((*nl) == n) { |
| rcu_assign_pointer(*nl, n->next); |
| return 0; |
| } |
| nl = &((*nl)->next); |
| } |
| return -ENOENT; |
| } |
| |
| /** |
| * notifier_call_chain - Informs the registered notifiers about an event. |
| * @nl: Pointer to head of the blocking notifier chain |
| * @val: Value passed unmodified to notifier function |
| * @v: Pointer passed unmodified to notifier function |
| * @nr_to_call: Number of notifier functions to be called. Don't care |
| * value of this parameter is -1. |
| * @nr_calls: Records the number of notifications sent. Don't care |
| * value of this field is NULL. |
| * @returns: notifier_call_chain returns the value returned by the |
| * last notifier function called. |
| */ |
| static int __kprobes notifier_call_chain(struct notifier_block **nl, |
| unsigned long val, void *v, |
| int nr_to_call, int *nr_calls) |
| { |
| int ret = NOTIFY_DONE; |
| struct notifier_block *nb, *next_nb; |
| |
| nb = rcu_dereference_raw(*nl); |
| |
| while (nb && nr_to_call) { |
| next_nb = rcu_dereference_raw(nb->next); |
| |
| #ifdef CONFIG_DEBUG_NOTIFIERS |
| if (unlikely(!func_ptr_is_kernel_text(nb->notifier_call))) { |
| WARN(1, "Invalid notifier called!"); |
| nb = next_nb; |
| continue; |
| } |
| #endif |
| ret = nb->notifier_call(nb, val, v); |
| |
| if (nr_calls) |
| (*nr_calls)++; |
| |
| if ((ret & NOTIFY_STOP_MASK) == NOTIFY_STOP_MASK) |
| break; |
| nb = next_nb; |
| nr_to_call--; |
| } |
| return ret; |
| } |
| |
| /* |
| * Atomic notifier chain routines. Registration and unregistration |
| * use a spinlock, and call_chain is synchronized by RCU (no locks). |
| */ |
| |
| /** |
| * atomic_notifier_chain_register - Add notifier to an atomic notifier chain |
| * @nh: Pointer to head of the atomic notifier chain |
| * @n: New entry in notifier chain |
| * |
| * Adds a notifier to an atomic notifier chain. |
| * |
| * Currently always returns zero. |
| */ |
| int atomic_notifier_chain_register(struct atomic_notifier_head *nh, |
| struct notifier_block *n) |
| { |
| unsigned long flags; |
| int ret; |
| |
| spin_lock_irqsave(&nh->lock, flags); |
| ret = notifier_chain_register(&nh->head, n); |
| spin_unlock_irqrestore(&nh->lock, flags); |
| return ret; |
| } |
| EXPORT_SYMBOL_GPL(atomic_notifier_chain_register); |
| |
| /** |
| * atomic_notifier_chain_unregister - Remove notifier from an atomic notifier chain |
| * @nh: Pointer to head of the atomic notifier chain |
| * @n: Entry to remove from notifier chain |
| * |
| * Removes a notifier from an atomic notifier chain. |
| * |
| * Returns zero on success or %-ENOENT on failure. |
| */ |
| int atomic_notifier_chain_unregister(struct atomic_notifier_head *nh, |
| struct notifier_block *n) |
| { |
| unsigned long flags; |
| int ret; |
| |
| spin_lock_irqsave(&nh->lock, flags); |
| ret = notifier_chain_unregister(&nh->head, n); |
| spin_unlock_irqrestore(&nh->lock, flags); |
| synchronize_rcu(); |
| return ret; |
| } |
| EXPORT_SYMBOL_GPL(atomic_notifier_chain_unregister); |
| |
| /** |
| * __atomic_notifier_call_chain - Call functions in an atomic notifier chain |
| * @nh: Pointer to head of the atomic notifier chain |
| * @val: Value passed unmodified to notifier function |
| * @v: Pointer passed unmodified to notifier function |
| * @nr_to_call: See the comment for notifier_call_chain. |
| * @nr_calls: See the comment for notifier_call_chain. |
| * |
| * Calls each function in a notifier chain in turn. The functions |
| * run in an atomic context, so they must not block. |
| * This routine uses RCU to synchronize with changes to the chain. |
| * |
| * If the return value of the notifier can be and'ed |
| * with %NOTIFY_STOP_MASK then atomic_notifier_call_chain() |
| * will return immediately, with the return value of |
| * the notifier function which halted execution. |
| * Otherwise the return value is the return value |
| * of the last notifier function called. |
| */ |
| int __kprobes __atomic_notifier_call_chain(struct atomic_notifier_head *nh, |
| unsigned long val, void *v, |
| int nr_to_call, int *nr_calls) |
| { |
| int ret; |
| |
| rcu_read_lock(); |
| ret = notifier_call_chain(&nh->head, val, v, nr_to_call, nr_calls); |
| rcu_read_unlock(); |
| return ret; |
| } |
| EXPORT_SYMBOL_GPL(__atomic_notifier_call_chain); |
| |
| int __kprobes atomic_notifier_call_chain(struct atomic_notifier_head *nh, |
| unsigned long val, void *v) |
| { |
| return __atomic_notifier_call_chain(nh, val, v, -1, NULL); |
| } |
| EXPORT_SYMBOL_GPL(atomic_notifier_call_chain); |
| |
| /* |
| * Blocking notifier chain routines. All access to the chain is |
| * synchronized by an rwsem. |
| */ |
| |
| /** |
| * blocking_notifier_chain_register - Add notifier to a blocking notifier chain |
| * @nh: Pointer to head of the blocking notifier chain |
| * @n: New entry in notifier chain |
| * |
| * Adds a notifier to a blocking notifier chain. |
| * Must be called in process context. |
| * |
| * Currently always returns zero. |
| */ |
| int blocking_notifier_chain_register(struct blocking_notifier_head *nh, |
| struct notifier_block *n) |
| { |
| int ret; |
| |
| /* |
| * This code gets used during boot-up, when task switching is |
| * not yet working and interrupts must remain disabled. At |
| * such times we must not call down_write(). |
| */ |
| if (unlikely(system_state == SYSTEM_BOOTING)) |
| return notifier_chain_register(&nh->head, n); |
| |
| down_write(&nh->rwsem); |
| ret = notifier_chain_register(&nh->head, n); |
| up_write(&nh->rwsem); |
| return ret; |
| } |
| EXPORT_SYMBOL_GPL(blocking_notifier_chain_register); |
| |
| /** |
| * blocking_notifier_chain_cond_register - Cond add notifier to a blocking notifier chain |
| * @nh: Pointer to head of the blocking notifier chain |
| * @n: New entry in notifier chain |
| * |
| * Adds a notifier to a blocking notifier chain, only if not already |
| * present in the chain. |
| * Must be called in process context. |
| * |
| * Currently always returns zero. |
| */ |
| int blocking_notifier_chain_cond_register(struct blocking_notifier_head *nh, |
| struct notifier_block *n) |
| { |
| int ret; |
| |
| down_write(&nh->rwsem); |
| ret = notifier_chain_cond_register(&nh->head, n); |
| up_write(&nh->rwsem); |
| return ret; |
| } |
| EXPORT_SYMBOL_GPL(blocking_notifier_chain_cond_register); |
| |
| /** |
| * blocking_notifier_chain_unregister - Remove notifier from a blocking notifier chain |
| * @nh: Pointer to head of the blocking notifier chain |
| * @n: Entry to remove from notifier chain |
| * |
| * Removes a notifier from a blocking notifier chain. |
| * Must be called from process context. |
| * |
| * Returns zero on success or %-ENOENT on failure. |
| */ |
| int blocking_notifier_chain_unregister(struct blocking_notifier_head *nh, |
| struct notifier_block *n) |
| { |
| int ret; |
| |
| /* |
| * This code gets used during boot-up, when task switching is |
| * not yet working and interrupts must remain disabled. At |
| * such times we must not call down_write(). |
| */ |
| if (unlikely(system_state == SYSTEM_BOOTING)) |
| return notifier_chain_unregister(&nh->head, n); |
| |
| down_write(&nh->rwsem); |
| ret = notifier_chain_unregister(&nh->head, n); |
| up_write(&nh->rwsem); |
| return ret; |
| } |
| EXPORT_SYMBOL_GPL(blocking_notifier_chain_unregister); |
| |
| /** |
| * __blocking_notifier_call_chain - Call functions in a blocking notifier chain |
| * @nh: Pointer to head of the blocking notifier chain |
| * @val: Value passed unmodified to notifier function |
| * @v: Pointer passed unmodified to notifier function |
| * @nr_to_call: See comment for notifier_call_chain. |
| * @nr_calls: See comment for notifier_call_chain. |
| * |
| * Calls each function in a notifier chain in turn. The functions |
| * run in a process context, so they are allowed to block. |
| * |
| * If the return value of the notifier can be and'ed |
| * with %NOTIFY_STOP_MASK then blocking_notifier_call_chain() |
| * will return immediately, with the return value of |
| * the notifier function which halted execution. |
| * Otherwise the return value is the return value |
| * of the last notifier function called. |
| */ |
| int __blocking_notifier_call_chain(struct blocking_notifier_head *nh, |
| unsigned long val, void *v, |
| int nr_to_call, int *nr_calls) |
| { |
| int ret = NOTIFY_DONE; |
| |
| /* |
| * We check the head outside the lock, but if this access is |
| * racy then it does not matter what the result of the test |
| * is, we re-check the list after having taken the lock anyway: |
| */ |
| if (rcu_dereference_raw(nh->head)) { |
| down_read(&nh->rwsem); |
| ret = notifier_call_chain(&nh->head, val, v, nr_to_call, |
| nr_calls); |
| up_read(&nh->rwsem); |
| } |
| return ret; |
| } |
| EXPORT_SYMBOL_GPL(__blocking_notifier_call_chain); |
| |
| int blocking_notifier_call_chain(struct blocking_notifier_head *nh, |
| unsigned long val, void *v) |
| { |
| return __blocking_notifier_call_chain(nh, val, v, -1, NULL); |
| } |
| EXPORT_SYMBOL_GPL(blocking_notifier_call_chain); |
| |
| /* |
| * Raw notifier chain routines. There is no protection; |
| * the caller must provide it. Use at your own risk! |
| */ |
| |
| /** |
| * raw_notifier_chain_register - Add notifier to a raw notifier chain |
| * @nh: Pointer to head of the raw notifier chain |
| * @n: New entry in notifier chain |
| * |
| * Adds a notifier to a raw notifier chain. |
| * All locking must be provided by the caller. |
| * |
| * Currently always returns zero. |
| */ |
| int raw_notifier_chain_register(struct raw_notifier_head *nh, |
| struct notifier_block *n) |
| { |
| return notifier_chain_register(&nh->head, n); |
| } |
| EXPORT_SYMBOL_GPL(raw_notifier_chain_register); |
| |
| /** |
| * raw_notifier_chain_unregister - Remove notifier from a raw notifier chain |
| * @nh: Pointer to head of the raw notifier chain |
| * @n: Entry to remove from notifier chain |
| * |
| * Removes a notifier from a raw notifier chain. |
| * All locking must be provided by the caller. |
| * |
| * Returns zero on success or %-ENOENT on failure. |
| */ |
| int raw_notifier_chain_unregister(struct raw_notifier_head *nh, |
| struct notifier_block *n) |
| { |
| return notifier_chain_unregister(&nh->head, n); |
| } |
| EXPORT_SYMBOL_GPL(raw_notifier_chain_unregister); |
| |
| /** |
| * __raw_notifier_call_chain - Call functions in a raw notifier chain |
| * @nh: Pointer to head of the raw notifier chain |
| * @val: Value passed unmodified to notifier function |
| * @v: Pointer passed unmodified to notifier function |
| * @nr_to_call: See comment for notifier_call_chain. |
| * @nr_calls: See comment for notifier_call_chain |
| * |
| * Calls each function in a notifier chain in turn. The functions |
| * run in an undefined context. |
| * All locking must be provided by the caller. |
| * |
| * If the return value of the notifier can be and'ed |
| * with %NOTIFY_STOP_MASK then raw_notifier_call_chain() |
| * will return immediately, with the return value of |
| * the notifier function which halted execution. |
| * Otherwise the return value is the return value |
| * of the last notifier function called. |
| */ |
| int __raw_notifier_call_chain(struct raw_notifier_head *nh, |
| unsigned long val, void *v, |
| int nr_to_call, int *nr_calls) |
| { |
| return notifier_call_chain(&nh->head, val, v, nr_to_call, nr_calls); |
| } |
| EXPORT_SYMBOL_GPL(__raw_notifier_call_chain); |
| |
| int raw_notifier_call_chain(struct raw_notifier_head *nh, |
| unsigned long val, void *v) |
| { |
| return __raw_notifier_call_chain(nh, val, v, -1, NULL); |
| } |
| EXPORT_SYMBOL_GPL(raw_notifier_call_chain); |
| |
| /* |
| * SRCU notifier chain routines. Registration and unregistration |
| * use a mutex, and call_chain is synchronized by SRCU (no locks). |
| */ |
| |
| /** |
| * srcu_notifier_chain_register - Add notifier to an SRCU notifier chain |
| * @nh: Pointer to head of the SRCU notifier chain |
| * @n: New entry in notifier chain |
| * |
| * Adds a notifier to an SRCU notifier chain. |
| * Must be called in process context. |
| * |
| * Currently always returns zero. |
| */ |
| int srcu_notifier_chain_register(struct srcu_notifier_head *nh, |
| struct notifier_block *n) |
| { |
| int ret; |
| |
| /* |
| * This code gets used during boot-up, when task switching is |
| * not yet working and interrupts must remain disabled. At |
| * such times we must not call mutex_lock(). |
| */ |
| if (unlikely(system_state == SYSTEM_BOOTING)) |
| return notifier_chain_register(&nh->head, n); |
| |
| mutex_lock(&nh->mutex); |
| ret = notifier_chain_register(&nh->head, n); |
| mutex_unlock(&nh->mutex); |
| return ret; |
| } |
| EXPORT_SYMBOL_GPL(srcu_notifier_chain_register); |
| |
| /** |
| * srcu_notifier_chain_unregister - Remove notifier from an SRCU notifier chain |
| * @nh: Pointer to head of the SRCU notifier chain |
| * @n: Entry to remove from notifier chain |
| * |
| * Removes a notifier from an SRCU notifier chain. |
| * Must be called from process context. |
| * |
| * Returns zero on success or %-ENOENT on failure. |
| */ |
| int srcu_notifier_chain_unregister(struct srcu_notifier_head *nh, |
| struct notifier_block *n) |
| { |
| int ret; |
| |
| /* |
| * This code gets used during boot-up, when task switching is |
| * not yet working and interrupts must remain disabled. At |
| * such times we must not call mutex_lock(). |
| */ |
| if (unlikely(system_state == SYSTEM_BOOTING)) |
| return notifier_chain_unregister(&nh->head, n); |
| |
| mutex_lock(&nh->mutex); |
| ret = notifier_chain_unregister(&nh->head, n); |
| mutex_unlock(&nh->mutex); |
| synchronize_srcu(&nh->srcu); |
| return ret; |
| } |
| EXPORT_SYMBOL_GPL(srcu_notifier_chain_unregister); |
| |
| /** |
| * __srcu_notifier_call_chain - Call functions in an SRCU notifier chain |
| * @nh: Pointer to head of the SRCU notifier chain |
| * @val: Value passed unmodified to notifier function |
| * @v: Pointer passed unmodified to notifier function |
| * @nr_to_call: See comment for notifier_call_chain. |
| * @nr_calls: See comment for notifier_call_chain |
| * |
| * Calls each function in a notifier chain in turn. The functions |
| * run in a process context, so they are allowed to block. |
| * |
| * If the return value of the notifier can be and'ed |
| * with %NOTIFY_STOP_MASK then srcu_notifier_call_chain() |
| * will return immediately, with the return value of |
| * the notifier function which halted execution. |
| * Otherwise the return value is the return value |
| * of the last notifier function called. |
| */ |
| int __srcu_notifier_call_chain(struct srcu_notifier_head *nh, |
| unsigned long val, void *v, |
| int nr_to_call, int *nr_calls) |
| { |
| int ret; |
| int idx; |
| |
| idx = srcu_read_lock(&nh->srcu); |
| ret = notifier_call_chain(&nh->head, val, v, nr_to_call, nr_calls); |
| srcu_read_unlock(&nh->srcu, idx); |
| return ret; |
| } |
| EXPORT_SYMBOL_GPL(__srcu_notifier_call_chain); |
| |
| int srcu_notifier_call_chain(struct srcu_notifier_head *nh, |
| unsigned long val, void *v) |
| { |
| return __srcu_notifier_call_chain(nh, val, v, -1, NULL); |
| } |
| EXPORT_SYMBOL_GPL(srcu_notifier_call_chain); |
| |
| /** |
| * srcu_init_notifier_head - Initialize an SRCU notifier head |
| * @nh: Pointer to head of the srcu notifier chain |
| * |
| * Unlike other sorts of notifier heads, SRCU notifier heads require |
| * dynamic initialization. Be sure to call this routine before |
| * calling any of the other SRCU notifier routines for this head. |
| * |
| * If an SRCU notifier head is deallocated, it must first be cleaned |
| * up by calling srcu_cleanup_notifier_head(). Otherwise the head's |
| * per-cpu data (used by the SRCU mechanism) will leak. |
| */ |
| void srcu_init_notifier_head(struct srcu_notifier_head *nh) |
| { |
| mutex_init(&nh->mutex); |
| if (init_srcu_struct(&nh->srcu) < 0) |
| BUG(); |
| nh->head = NULL; |
| } |
| EXPORT_SYMBOL_GPL(srcu_init_notifier_head); |
| |
| static ATOMIC_NOTIFIER_HEAD(die_chain); |
| |
| int notrace __kprobes notify_die(enum die_val val, const char *str, |
| struct pt_regs *regs, long err, int trap, int sig) |
| { |
| struct die_args args = { |
| .regs = regs, |
| .str = str, |
| .err = err, |
| .trapnr = trap, |
| .signr = sig, |
| |
| }; |
| return atomic_notifier_call_chain(&die_chain, val, &args); |
| } |
| |
| int register_die_notifier(struct notifier_block *nb) |
| { |
| vmalloc_sync_all(); |
| return atomic_notifier_chain_register(&die_chain, nb); |
| } |
| EXPORT_SYMBOL_GPL(register_die_notifier); |
| |
| int unregister_die_notifier(struct notifier_block *nb) |
| { |
| return atomic_notifier_chain_unregister(&die_chain, nb); |
| } |
| EXPORT_SYMBOL_GPL(unregister_die_notifier); |